2 PATENT 

AMENDMENT 

Amendments to the Claims 

Please cancel claims 1-9, 51-96 and 128-140. Please amend claims 10, 20, 28, 37, 44, 97- 
102 and 106-127. Please add new claims 141-151. The currently pending claims are listed 
below. 

1 - 9. (Cancelled) 



1 10. (Currently Amended) A method for using verified information concerning a tangible 

2 object, comprising the steps of: 

3 accessing descriptor data associated with the tangible object, said descriptor data including 

4 an identity public key for transforming data according to a first public/private key encryption 

5 algorithm, attribute data containing information concerning said tangible object, and a digital 

6 signature; 

7 verifying that said digital signature matches said identity public key and said attribute data; 

8 performing a pair of complementary data transformations on source test data to produce 

9 resultant test data, said pair of complementary data transformations being performed by: 

10 (a) performing a first data transformation according to said first public/private key 

1 1 encryption algorithm using said identity public key, and 

12 (b) accessing a digital protection system physically attached to said tangible object to 

1 3 perform a second data transformation according to said first public/private key encryption 

14 algorithm using an identity private key in said digital protection system, said identity private key 

15 corresponding to said identity public key according to said first public/private key encryption 

16 algorithm, said second data transformation being complementary to said first data transformation,, 

17 said digital protection system being a tangible device which receives input data, processes data. 

18 and produces output data independently of said tangible object ; 

1 9 comparing said source test data with said resultant test data; and 
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20 using said attribute data in a manner dependent on the results of said step of verifying that 

21 said digital signature matches said identity public key and said attribute data, and said step of 

22 comparing said source test data with said resultant test data. 

1 11. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said digital signature represents an encryption of data derived from said identity 

3 public key and said attribute data according to a derivation algorithm, said encryption being 

4 according to a second public/private key encryption algorithm using a signature private key, and 

5 wherein said step of verifying that said digital signature matches said identity public key and said 

6 attribute data comprises: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 1 2. (Original) The method for using verified information concerning a tangible object of 

2 claim 1 1 , wherein said derivation algorithm comprises a hash function. 

1 13. (Original) The method for using verified information concerning a tangible object of 

2 claim 11, wherein said derivation algorithm is an identity function which produces as output an 

3 identical copy of the input. 



Docket No.: ROC9-2000-0168-US1 
Serial No.: 09/884,636 



4 PATENT 



AMENDMENT 

1 14. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation. 

1 15. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 16. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said step of accessing descriptor data comprises obtaining said descriptor data 

3 from said digital protection system. 

1 1 7. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said source test data is randomly generated data. 

1 18. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said tangible object is a digital data processing device having at least one 

3 processor external to said digital protection system. 

1 1 9. (Original) The method for using verified information concerning a tangible object of 

2 claim 10, wherein said digital protection system of said tangible object includes a coupling for 

3 mating with a local digital data processing device separate from said tangible object. 
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1 20. (Currently Amended) A program product for using verified information concerning a 

2 tangible object, said program product comprising a plurality of processor executable instructions 

3 recorded on signal-bearing media, wherein said instructions, when executed by a processor of a 

4 digital data processing device, cause the digital data processing device to perform the steps of: 

5 accessing descriptor data associated with the tangible object, said descriptor data including 

6 an identity public key for transforming data according to a first public/private key encryption 

7 algorithm, attribute data containing information concerning said tangible object, and a digital 

8 signature; 

9 verifying that said digital signature matches said identity public key and said attribute data; 

10 performing a pair of complementary data transformations on source test data to produce 

1 1 resultant test data, said pair of complementary data transformations being performed by: 

12 (a) performing a first data transformation according to said first public/private key 

13 encryption algorithm using said identity public key, and 

14 (b) accessing a digital protection system physically attached to said tangible object to 

15 perform a second data transformation according to said first public/private key encryption 

16 algorithm using an identity private key in said digital protection system, said identity private key 

17 corresponding to said identity public key according to said first public/private key encryption 

1 8 algorithm, said second data transformation being complementary to said first data transformation,, 

19 said digital protection system being a tangible device which receives input data, processes data, 

20 and produces output data independently of said tangible object ; 

21 comparing said source test data with said resultant test data; and 

22 using said attribute data in a manner dependent on the results of said step of verifying that 

23 said digital signature matches said identity public key and said attribute data, and said step of 

24 comparing said source test data with said resultant test data. 
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1 21. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said digital signature represents an encryption of data derived from 

3 said identity public key and said attribute data according to a derivation algorithm, said encryption 

4 being according to a second public/private key encryption algorithm using a signature private key, 

5 and wherein said step of verifying that said digital signature matches said identity public key and 

6 said attribute data comprises: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 22. (Original) The program product for using verified information concerning a tangible 

2 object of claim 21, wherein said derivation algorithm comprises a hash function. 

1 23. (Original) The program product for using verified information concerning a tangible 

2 object of claim 21 , wherein said derivation algorithm is an identity function which produces as 

3 output an identical copy of the input. 

1 24. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said first data transformation is an encryption of said source test data 

3 and said second data transformation is a decryption of said source test data encrypted by said first 

4 data transformation, said first data transformation being performed before said second data 

5 transformation. 



Docket No.: ROC9-2000-0168-US1 
Serial No.: 09/884,636 



7 PATENT 



AMENDMENT 

1 25. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said second data transformation is an encryption of said source test 

3 data and said first data transformation is a decryption of said source test data encrypted by said 

4 second data transformation, said second data transformation being performed before said first data 

5 transformation. 

1 26. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said step of accessing descriptor data comprises obtaining said 

3 descriptor data from said digital protection system. 

1 27. (Original) The program product for using verified information concerning a tangible 

2 object of claim 20, wherein said source test data is randomly generated data. 
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1 28. (Currently Amended) A method for updating attribute data associated with a tangible 

2 object, comprising the steps of: 

3 receiving a request to a service provider from a requestor to update said attribute data, the 

4 request including an identity public key for transforming data according to a first public/private 

5 key encryption algorithm , old attribute data, and an old digital signature of said old attribute data 

6 and said identity public key ; 

7 verifying that said old digital signature matches said identity public key and said old 

8 attribute data; 

9 performing a pair of complementary data transformations of source test data to produce 

10 resultant test data, a first of said pair of complementary data transformations being performed by 

1 1 said service provider according to said first public/private key encryption algorithm using said 

12 identity public key, and a second of said pair of complementary data transformations being 

13 performed by requesting a digital protection system physically attached to said tangible object to 

14 perform said second data transformation according to said first public/private key encryption 

1 5 algorithm using an identity private key in said digital protection system, said identity private key 

1 6 corresponding to said identity public key according to said first public/private key encryption 

1 7 algorithm , said digital protection system being a tangible device which receives input data. 

18 processes data, and produces output data independently of said tangible object ; 

19 comparing said source test data with said resultant test data, said comparing step being 

20 performed by said service provider; and 

21 depending on the results of said step of comparing said source test data with said resultant 

22 test data, generating an updated descriptor, said updated descriptor comprising said identity public 

23 key, updated attribute data, and a an updated digital signature of said identity public key and said 

24 updated attribute data. 
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1 29. (Original) The method for updating attribute data of claim 28, wherein said step of 

2 generating an updated descriptor comprises generating said digital signature by encrypting a 

3 derivation of said identity public key and said updated attribute data according to a second 

4 public/private key encryption algorithm using a signature private key. 

1 30. (Currenlty Amended) The method for updating attribute data of claim 28, wherein said 

2 r e quest to update attribute data includes old attribut e data and an old digital signature, said old 

3 digital signature r e pr e senting represents an encryption of data derived from said identity public 

4 key and said old attribute data, said encryption being according to a second public/private key 

5 encryption algorithm using a signature private key, said method further step of verifying that said 

6 old digital signature matches said identity public key and said old attribute data comprising: 

7 decrypting said old digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 comparing the decrypted old digital signature to said data derived from said identity public 

10 key and said old attribute data to verify said attribute data; 

1 1 wherein said step of generating an updated descriptor further depends on the results of said 

12 step of comparing the decrypted old digital signature to said data derived for said identity public 

1 3 key and said old attribute data. 

1 31 . (Original) The method for updating attribute data of claim 28, wherein said first of said 

2 pair of complementary data transformations is an encryption of said source test data and said 

3 second of said pair of complementary data transformations is a decryption of said source test data 

4 encrypted by said first transformation, said first transformation being performed before said 

5 second transformation. 
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1 32. (Original) The method for updating attribute data of claim 28, wherein said second of said 

2 pair of complementary data transformations is an encryption of said source test data and said first 

3 of said pair of complementary data transformations is a decryption of said source test data 

4 encrypted by said second transformation, said second transformation being performed before said 

5 first transformation. 

1 33. (Original) The method for updating attribute data of claim 28, wherein said service 

2 provider is remote from said tangible object. 

1 34. (Original) The method for updating attribute data of claim 33, wherein said tangible 

2 object is coupled to a local device, said local device communicating remotely with said service 

3 provider. 

1 35. (Original) The method for updating attribute data of claim 28, further comprising the step 

2 of accessing a database in said service provider to verify that the requestor is entitled to the 

3 requested update. 

1 36. (Original) The method for updating attribute data of claim 28, wherein said source test 

2 data is randomly generated data. 

1 37. (Currently Amended) A method for using verified information concerning a tangible 

2 object, comprising the steps of: 

3 accessing descriptor data associated with the tangible object, said descriptor data including 

4 an identity public key for transforming data according to a first public/private key encryption 

5 algorithm, attribute data containing information concerning said tangible object, and a digital 

6 signature, wherein said digital signature represents an encryption of data derived from said 
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7 identity public key and said attribute data according to a derivation algorithm, said encryption 

8 being according to a second public/private key encryption algorithm using a signature private key; 

9 decrypting said digital signature according to said second public/private key encryption 

10 algorithm using a signature public key; 

1 1 deriving data from said identity public key and said attribute data using said derivation 

12 algorithm; 

13 comparing the decrypted digital signature to the data derived from said identity public key 

14 and said attribute data according to said derivation algorithm; 

1 5 generating random source test data; 

16 performing a pair of complementary data transformations of said source test data to 

1 7 produce resultant test data, including: 

18 (a) performing a first data transformation of said pair of complementary data 

19 transformations according to said first public/private key encryption algorithm using said 

20 identity public key, and 

21 (b) accessing a digital protection system physically attached to said tangible object to 

22 perform a second data transformation of said pair of complementary data transformations, 

23 said second data transformation being according to said first public/private key encryption 

24 algorithm using an identity private key in said digital protection system, said identity 

25 private key corresponding to said identity public key according to said first public/private 

26 key encryption algorithm , said digital protection system being a tangible device which 

27 receives input data, processes data, and produces output data independently of said tangible 

28 object ; 

29 comparing said random source test data with said resultant test data; and 

30 using said attribute data in a manner dependent on the results of said step of comparing the 

3 1 decrypted digital signature to the data derived from said identity public key and said attribute data, 

32 and said step of comparing said random source test data with said resultant test data. 



Docket No. 
Serial No.: 



ROC9-2000-0168-US1 
09/884,636 



12 PATENT 



AMENDMENT 

1 38. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation.. 

1 39. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 40. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said step of accessing descriptor data comprises obtaining said descriptor data 

3 from said digital protection system. 

1 41 . (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said derivation algorithm comprises a hash function. 

1 42. (Original) The method for using verified information concerning a tangible object of 

2 claim 41, wherein said hash function belongs to the set consisting of SHA-1 and MD5. 

1 43. (Original) The method for using verified information concerning a tangible object of 

2 claim 37, wherein said digital protection system is implemented in digital logic contained on a 

3 single integrated circuit substrate. 
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1 44. (Currently Amended) An apparatus for verifying information concerning a tangible 

2 object, comprising: 

3 a programmable processor; 

4 a memory for storing instructions executable on said programmable processor; 

5 a digital protection system interface coupled to said processor, said interface 

6 communicating with a digital protection system for said tangible object , said digital protection 

7 system being a tangible device physically attached to said tangible object which receives input 

8 data, processes data, and produces output data independently of said tangible object ; 

9 a protection system verification program executable on said programmable processor, 

1 0 wherein said protection system verification program 

1 1 (a) obtains a data descriptor from a said digital protection system through said 

12 interface, said data descriptor comprising an identity public key for transforming data 

1 3 according to a first public/private key encryption algorithm, attribute data containing 

14 information concerning said tangible object, and a digital signature; 

1 5 (b) verifies that said digital signature matches said identity public key and said 

16 attribute data; 

1 7 (c) performs a first data transformation of a pair of complementary data 

1 8 transformations of source test data which produce resultant test data, said first data 

19 transformation being according to said first public/private key encryption algorithm using 

20 said identity public key; 

2 1 (d) directs said digital protection system to perform a second data transformation of 

22 said pair of complementary data transformations of source test data which produce 

23 resultant test data, said second data transformation being complementary to said first data 

24 transformation; 

25 (e) compares said source test data with said resultant test data; and 

26 (f) verifies information concerning the tangible object responsive to steps (b) and (e). 
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1 45. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital protection system interface is a physical coupling which supplies 

3 power to said digital protection system. 

1 46. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital protection system interface is a remote transmission interface. 

1 47. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said digital signature represents an encryption of data derived from said identity 

3 public key and said attribute data according to a derivation algorithm, said encryption being 

4 according to a second public/private key encryption algorithm using a signature private key, and 

5 wherein said protection system verification program verifies that said digital signature matches 

6 said identity public key and said attribute data by: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 48. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation.. 
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1 49. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 50. (Original) The apparatus for verifying information concerning a tangible object of 

2 claim 44, wherein said source test data is randomly generated data. 



51-90. (Cancelled) 
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1 97. (Currently Amended) A personal identity document for a subject natural person , 

2 comprising: 

3 a portable, tangible carrier for carrying by said natural person ; and 

4 a digital protection system physically attached to said carrier, said digital protection system 

5 comprising: 

6 (a) an external interface for receiving data requests, 

7 (b) a processor coupled to said external interface, said processor capable of 

8 performing a data transformation according to a first public/private key encryption 

9 algorithm, and 

10 (c) an internal data storage, said internal data storage storing an identity private key 

1 1 and a data descriptor, said identity private key being inaccessible outside said external 

12 interface, said data descriptor including an identity public key, attribute data relating to 

13 attributes of said natural person, and a digital signature of said identity public key and said 

14 attribute data, said identity public key corresponding to said identity private key according 

1 5 to said first public/private key encryption algorithm; 

16 wherein said processor performs said data transformation of data responsive to a request 

1 7 received through said external interface, said processor performing said data transformation 

1 8 according to said first public/private key encryption algorithm using said identity private key. 

1 98. (Currently Amended) The personal identity document of claim 97, wherein said attribute 

2 data comprises data identifying a digitized photographic image of said subj e ct natural person . 

1 99. (Currently Amended) The personal identity document of claim 97, wherein said attribute 

2 data comprises data identifying said subj e ct natural person according to at least one physical 

3 characteristic verified by a digital data processing device. 



Docket No.: ROC9-2000-0168-US1 



Serial No.: 09/884,636 



17 PATENT 



AMENDMENT 

1 1 00. (Currently Amended) The personal identity document of claim 99, wherein said data 

2 identifying a said natural person according to at least one physical characteristic comprises data 

3 derived from an iris scan. 

1 101. (Currently Amended) The personal identity document of claim 99, wherein said data 

2 identifying a said natural person according to at least one physical characteristic comprises data 

3 derived from an retina scan. 

1 102. (Currently Amended) The personal identity document of claim 99, wherein said data 

2 identifying a said natural person according to at least one physical characteristic comprises data 

3 derived from a voice sample. 

1 103. (Original) The personal identity document of claim 97, wherein said digital signature is an 

2 encryption of data derived from said identity public key and attribute data, said encryption being 

3 according to a second public private key encryption algorithm using a signature private key, said 

4 digital signature being capable of decoding according to said second public/private key encryption 

5 algorithm using a signature public key. 

1 104. (Original) The personal identity document of claim 103, wherein said digital signature is 

2 an encryption of data derived from said identity public key and attribute data by performing a pre- 

3 defined hash function. 

1 105. (Original) The apparatus of claim 97, wherein said digital protection system is 

2 implemented in digital logic contained on a single integrated circuit substrate. 
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1 106. (Currently Amended) A control station for verifying the respective personal identities of 

2 multiple subj e cts natural persons , comprising: 

3 a programmable processor; 

4 a memory, said memory storing a control program which executes on said programmable 

5 processor and controls at least some operations of said control station; 

6 a digital personal identity document interface, said interface communicating with a digital 

7 personal identity document of a subject natural person, said digital personal identity document 

8 being a portable, tangible device carried by said natural person ; 

9 wherein said control program verifies a personal identity of a subject natural person by: 

10 (a) obtaining a data descriptor from said digital personal identity document of the 

1 1 subject through said interface, said descriptor comprising an identity public key for 

12 transforming data according to a first public/private key encryption algorithm, attribute 

1 3 data containing identifying information concerning said subject natural person , and a 

14 digital signature; 

1 5 (b) verifying that said digital signature matches said identity public key and said 

16 attribute data; 

1 7 (c) performing a pair of complementary data transformations of source test data to 

1 8 produce resultant test data, said pair of complementary data transformations including (i) a 

1 9 first data transformation according to said first public/private key encryption algorithm 

20 using said identity public key, said first data transformation being performed externally to 

21 said digital personal identity document, and (ii) a second data transformation according to 

22 said first public/private key encryption algorithm, said second data transformation being 

23 performed by said digital personal identity document responsive to a request by said 

24 control program; 

25 (d) comparing said source test data with said resultant test data; and 
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26 (e) verifying the identity of said subjeet natural person depending on the results of 

27 said step of verifying that said digital signature matches said identity public key and said 

28 attribute data, and said step of comparing said source test data with said resultant test data. 

1 107. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subj e cts natural persons of claim 106, wherein said control station is a passport control station at a 

3 jurisdictional entry or exit location. 

1 108. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 106, further comprising an operator interface displaying 

3 information to an operator, said information including a result of steps (b) and (d). 

1 109. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subj e cts natural persons of claim 108, wherein said information displayed to said operator further 

3 comprises at least some identifying information derived from said attribute data.. 

1 110. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subj e cts natural persons of claim 109, wherein said identifying information derived from said 

3 attribute data comprises a digitized photographic image of said subject. 

1 111. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subj e cts natural persons of claim 1 06, further comprising a physical characteristic sensing device, 

3 said physical characteristic sensing device automatically sensing at least one physical 

4 characteristic of the subject, said at least one physical characteristic being compared to identifying 

5 data contained in said data descriptor to verify the identity of said subject. 
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1 112. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 111, wherein said physical characteristic sensing device is an iris 

3 scanning device. 

1 113. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 1 06, wherein said digital signature represents an encryption of 

3 data derived from said identity public key and said attribute data according to a derivation 

4 algorithm, said encryption being according to a second public/private key encryption algorithm 

5 using a signature private key, and wherein said control program verifies that said digital signature 

6 matches said identity public key and said attribute data by: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 114. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 106, wherein said first data transformation is an encryption of 

3 said source test data and said second data transformation is a decryption of said source test data 

4 encrypted by said first data transformation, said first data transformation being performed before 

5 said second data transformation. 
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1 115. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 106, wherein said second data transformation is an encryption of 

3 said source test data and said first data transformation is a decryption of said source test data 

4 encrypted by said second data transformation, said second data transformation being performed 

5 before said first data transformation. 

1 116. (Currently Amended) The control station for verifying the respective identities of multiple 

2 subjects natural persons of claim 106, wherein said source test data is randomly generated data. 

1 117. (Currently Amended) A method for verifying the identity of a subject natural person , 

2 comprising the steps of: 

3 (a) obtaining a data descriptor from a digital personal identity document of the subject 

4 natural person, said digital personal identity document being a portable, tangible device carried by 

5 said natural person , said descriptor comprising an identity public key for transforming data 

6 according to a first public/private key encryption algorithm, attribute data containing identifying 

7 information concerning said subj e ct natural person , and a digital signature; 

8 (b) verifying that said digital signature matches said identity public key and said attribute 

9 data; 

10 (c) performing a pair of complementary data transformations of source test data to produce 

1 1 resultant test data, wherein a first data transformation of said pair is performed by a verifying 

12 device according to said first public/private key encryption algorithm using said identity public 

1 3 key, and wherein a second data transformation of said pair is performed by said digital personal 

14 identity document responsive to a request from a verifying device, said second data 

1 5 transformation being complementary to said first data transformation; 

16 (d) comparing said source test data with said resultant test data; and 

1 7 (e) verifying the identity of said subjeet natural person responsive to the results of steps (b) 

18 and(d). 
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19 118. (Currently Amended) The method for verifying the identity of a subject natural person of 

20 claim 117, wherein said digital signature represents an encryption of data derived from said 

21 identity public key and said attribute data acco r ding , said encryption being according to a second 

22 public/private key encryption algorithm using a signature private key, and wherein step (b) 

23 comprises the steps of: 

24 decrypting said digital signature according to said second public/private key encryption 

25 algorithm using a signature public key; 

26 comparing the decrypted digital signature to said data derived from said identity public key 

27 and said attribute data. 

1 119. (Currently Amended) The method for verifying the identity of a sttbjeet natural person of 

2 claim 118, wherein said digital signature is an encryption of data derived from said identity public 

3 key and attribute data by performing a pre-defined hash function. 

1 1 20. (Currently Amended) The method for verifying the identity of a subj e ct natural person of 

2 claim 117, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation.. 

1 121. (Currently Amended) The method for verifying the identity of a subj e ct natural person of 

2 claim 117, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 
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1 1 22. (Currently Amended) The method for verifying the identity of a sttbjeet natural person of 

2 claim 117, further comprising the step of displaying information to an operator, said information 

3 including a result of step (e). 

1 123. (Currently Amended) The method for verifying the identity of a subject natural person of 

2 claim 122, wherein said information displayed to said operator further comprises at least some 

3 identifying information derived from said attribute data.. 

1 124. (Currently Amended) The method for verifying the identity of a subjeet natural person of 

2 claim 123, wherein said identifying information derived from said attribute data comprises a 

3 digitized photographic image of said subject natural person . 

1 125. (Currently Amended) The method for verifying the identity of a subj e ct natural person of 

2 claim 1 17, further comprising the steps of: 

3 automatically sensing at least one physical characteristic of the subject natural person with 

4 a sensing device; and 

5 automatically comparing said at least one physical characteristic to identifying data 

6 contained in said data descriptor to verify the identity of said subject natural person . 

1 126. (Currently Amended) The method for verifying the identity of a subj e ct natural person of 

2 claim 125, wherein said sensing device is an iris scanning device. 

1 127. (Currently Amended) The method for verifying the identity of a subject natural person of 

2 claim 117, wherein said source test data is randomly generated data. 



128- 140. (Cancelled) 
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1 141. (New) The method for updating attribute data of claim 28, wherein said identity public 

2 key, said old attribute data and said old digital signature are obtained from said digital protection 

3 mechanism, said method further comprising the step of storing said updated descriptor in said 

4 digital protection mechanism. 

1 142. (New) The apparatus of claim 97, wherein said carrier contains at least some of said 

2 attribute data printed in human readable form. 

1 143. (New) A method for using verified information concerning a tangible object, comprising 

2 the steps of: 

3 accessing descriptor data associated with the tangible object, said tangible object being 

4 other than a data processing device, said descriptor data including an identity public key for 

5 transforming data according to a first public/private key encryption algorithm, attribute data 

6 containing information concerning said tangible object, and a digital signature; 

7 verifying that said digital signature matches said identity public key and said attribute data; 

8 performing a pair of complementary data transformations on source test data to produce 

9 resultant test data, said pair of complementary data transformations being performed by: 

10 (a) performing a first data transformation according to said first public/private key 

1 1 encryption algorithm using said identity public key, and 

12 (b) accessing a digital protection system physically attached to said tangible object to 

13 perform a second data transformation according to said first public/private key encryption 

14 algorithm using an identity private key in said digital protection system, said identity private key 

15 corresponding to said identity public key according to said first public/private key encryption 

1 6 algorithm, said second data transformation being complementary to said first data transformation; 

17 comparing said source test data with said resultant test data; and 
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1 8 using said attribute data in a manner dependent on the results of said step of verifying that 

19 said digital signature matches said identity public key and said attribute data, and said step of 

20 comparing said source test data with said resultant test data. 

1 144. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said digital signature represents an encryption of data derived from said 

3 identity public key and said attribute data according to a derivation algorithm, said encryption 

4 being according to a second public/private key encryption algorithm using a signature private key, 

5 and wherein said step of verifying that said digital signature matches said identity public key and 

6 said attribute data comprises: 

7 decrypting said digital signature according to said second public/private key encryption 

8 algorithm using a signature public key; 

9 deriving data from said identity public key and said attribute data using said derivation 

10 algorithm; and 

1 1 comparing the decrypted digital signature to the data derived from said identity public key 

12 and said attribute data according to said derivation algorithm. 

1 145. (New) The method for using verified information concerning a tangible object of 

2 claim 144, wherein said derivation algorithm comprises a hash function. 

1 146. (New) The method for using verified information concerning a tangible object of 

2 claim 144, wherein said derivation algorithm is an identity function which produces as output an 

3 identical copy of the input. 
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1 147. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said first data transformation is an encryption of said source test data and said 

3 second data transformation is a decryption of said source test data encrypted by said first data 

4 transformation, said first data transformation being performed before said second data 

5 transformation. 

1 148. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said second data transformation is an encryption of said source test data and 

3 said first data transformation is a decryption of said source test data encrypted by said second data 

4 transformation, said second data transformation being performed before said first data 

5 transformation. 

1 149. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said step of accessing descriptor data comprises obtaining said descriptor data 

3 from said digital protection system. 

1 1 50. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said source test data is randomly generated data. 

1 151. (New) The method for using verified information concerning a tangible object of 

2 claim 143, wherein said digital protection system of said tangible object includes a coupling for 

3 mating with a local digital data processing device separate from said tangible object. 



Docket No.: ROC9-2000-0168-US1 
Serial No.: 09/884,636 



